$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: 0uF3R+ufZywRjspEpZLKj9cFZ8OODvcBQiH8J7tOKgo= Subject key identifier: 1D:C7:80:1B:61:12:F9:50:95:90:C8:DF:D1:BB:3A:A7:5E:B6:A0:1C Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: 85 Signing time: Fri 13 Jun 2025 05:30:10 +0000 Manifest this update: Fri 13 Jun 2025 05:30:10 +0000 Manifest next update: Fri 20 Jun 2025 05:30:10 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: Al6RoiPJ/fd/MIQDZCvzb09XAsis1BFOPasG344B0HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB, serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Jun 13 05:30:10 2025 GMT Not After : Jun 20 05:30:10 2025 GMT Subject: CN=684bb762-4947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:98:d9:da:ff:81:48:bb:09:8d:5d:8e:02: cf:fd:24:9a:ab:2c:a2:0c:72:f7:e6:8c:10:9d:ad: d1:6f:ea:ac:30:75:a7:f4:06:3b:ac:1e:85:76:cd: 51:26:4f:9c:47:90:25:cb:9f:f3:8e:8e:7d:75:cb: 3e:43:d7:75:5b:db:9e:ef:e7:03:94:68:99:c3:d6: 15:85:e7:d2:40:b3:04:04:9a:c3:b2:da:fe:91:a8: 9f:ee:1f:0f:e6:86:1c:8e:b3:9d:d1:c9:44:49:66: fa:5f:db:3a:7c:5c:e6:96:60:da:1c:70:52:d1:7a: 3a:7f:41:12:e8:b0:84:f9:b1:4f:85:98:c9:e0:6c: 3d:f7:0c:b1:2f:82:3f:ab:29:b1:a5:6b:7a:a7:7c: b6:12:a0:bc:2c:d9:96:9b:59:d9:99:ec:1b:3a:b4: f2:0f:cc:fe:48:5b:a1:ba:27:91:e3:c4:dc:ff:69: 3f:3b:71:79:84:2b:32:1c:7d:30:ee:f6:52:e3:2c: f9:1f:26:36:bc:a3:73:f5:32:da:5c:cc:cf:7f:81: 4a:ea:7f:de:12:b7:cb:53:89:d5:c2:ad:01:3f:11: 45:c2:f2:47:fd:a3:4c:bb:c8:48:3d:b2:e7:e8:dd: f1:3b:b0:b6:ed:b9:54:77:b4:13:62:fc:1f:d4:bc: 6e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C7:80:1B:61:12:F9:50:95:90:C8:DF:D1:BB:3A:A7:5E:B6:A0:1C X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:4c:c1:86:a6:76:8b:76:13:c6:fd:3b:01:75:99:9d:2c:d8: 03:ff:b9:e9:23:13:6d:bd:5e:2b:19:cb:41:74:18:fb:b3:70: 6e:f5:6a:ec:ee:69:2a:91:76:cc:80:a5:2f:f6:55:90:93:84: 18:32:85:04:25:21:45:73:1c:22:fe:dd:62:5a:ba:24:45:42: f9:be:f8:99:aa:50:40:4d:2a:3e:81:e0:4a:4e:a8:50:ce:ab: f4:72:35:72:2c:3f:ca:47:41:2c:ee:16:9b:33:93:ce:3f:79: 9d:54:32:24:11:23:0e:a7:8a:0c:19:32:82:35:46:6a:07:ea: 00:cc:f7:89:1b:dd:6f:1e:2a:ac:07:5d:6c:41:00:1b:fb:75: 08:3a:d8:a3:77:72:24:74:8b:8c:84:4e:3e:52:ed:24:d2:fc: 58:19:1f:4b:b1:f6:59:f2:ed:46:79:2c:86:14:5d:63:99:c3: 50:49:5b:77:19:7f:82:1f:5d:26:12:01:60:74:be:58:ba:5c: a3:0b:a3:72:69:ab:e4:29:37:92:7b:67:76:d8:0a:59:7f:2c: 2a:6e:bb:f2:00:bb:ef:48:d0:df:c0:a7:cb:99:db:30:f8:6d: af:e6:8f:1a:b4:be:4c:0c:08:e8:00:45:7b:87:d4:06:e0:96: a8:63:3c:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA3QkIxMTAvBgNVBAUTKDQ0RjlDNERBNDdFNjM3MUZEMUM5RjlGOEU1NjREMTgw M0EwRjMyODcwHhcNMjUwNjEzMDUzMDEwWhcNMjUwNjIwMDUzMDEwWjAYMRYwFAYD VQQDEw02ODRiYjc2Mi00OTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUmY2dr/gUi7CY1djgLP/SSaqyyiDHL35owQna3Rb+qsMHWn9AY7rB6Fds1R Jk+cR5Aly5/zjo59dcs+Q9d1W9ue7+cDlGiZw9YVhefSQLMEBJrDstr+kaif7h8P 5oYcjrOd0clESWb6X9s6fFzmlmDaHHBS0Xo6f0ES6LCE+bFPhZjJ4Gw99wyxL4I/ qymxpWt6p3y2EqC8LNmWm1nZmewbOrTyD8z+SFuhuieR48Tc/2k/O3F5hCsyHH0w 7vZS4yz5HyY2vKNz9TLaXMzPf4FK6n/eErfLU4nVwq0BPxFFwvJH/aNMu8hIPbLn 6N3xO7C27blUd7QTYvwf1LxuVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3HgBth EvlQlZDI39G7OqdetqAcMB8GA1UdIwQYMBaAFET5xNpH5jcf0cn5+OVk0YA6DzKH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDdCQi8wQUU0ODI5MDdD QjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54X1J5Zm40NVdUUmdEb1BN b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1vYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDdCQi8wQUU0ODI5MDdDQjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54 X1J5Zm40NVdUUmdEb1BNb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuTMGGpnaLdhPG/TsBdZmdLNgD/7npIxNtvV4rGctBdBj7s3Bu9Wrs 7mkqkXbMgKUv9lWQk4QYMoUEJSFFcxwi/t1iWrokRUL5vviZqlBATSo+geBKTqhQ zqv0cjVyLD/KR0Es7habM5POP3mdVDIkESMOp4oMGTKCNUZqB+oAzPeJG91vHiqs B11sQQAb+3UIOtijd3IkdIuMhE4+Uu0k0vxYGR9LsfZZ8u1GeSyGFF1jmcNQSVt3 GX+CH10mEgFgdL5YulyjC6NyaavkKTeSe2d22ApZfywqbrvyALvvSNDfwKfLmdsw +G2v5o8atL5MDAjoAEV7h9QG4JaoYzyP -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:13 2025 by rpki-client